Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
securityvulnsSecurityvulnsSECURITYVULNS:DOC:29471
HistoryJun 17, 2013 - 12:00 a.m.

[SECURITY] [DSA 2703-1] subversion security update

2013-06-1700:00:00
vulners.com
16
JSON

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Debian Security Advisory DSA-2703-1 [email protected]
http://www.debian.org/security/ Salvatore Bonaccorso
June 09, 2013 http://www.debian.org/security/faq

Package : subversion
Vulnerability : several
Problem type : remote
Debian-specific: no
CVE ID : CVE-2013-1968 CVE-2013-2112
Debian Bug : 711033

Several vulnerabilities were discovered in Subversion, a version control
system. The Common Vulnerabilities and Exposures project identifies the
following problems:

CVE-2013-1968

Subversion repositories with the FSFS repository data store format
can be corrupted by newline characters in filenames. A remote
attacker with a malicious client could use this flaw to disrupt the
service for other users using that repository.

CVE-2013-2112

Subversion's svnserve server process may exit when an incoming TCP
connection is closed early in the connection process. A remote
attacker can cause svnserve to exit and thus deny service to users
of the server.

For the oldstable distribution (squeeze), these problems have been fixed in
version 1.6.12dfsg-7.

For the stable distribution (wheezy), these problems have been fixed in
version 1.6.17dfsg-4+deb7u3.

For the unstable distribution (sid), these problems will be fixed soon.

We recommend that you upgrade your subversion packages.

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: http://www.debian.org/security/

Mailing list: [email protected]
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)
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=Tnvw
-----END PGP SIGNATURE-----

Related

nessus 17
securityvulns 1
mageia 1
osv 1
openvas 15
debian 2
oraclelinux 1
centos 1
redhat 1
fedora 1
ibm 1
prion 2
freebsd 2
veracode 2
cve 2
debiancve 2
ubuntucve 2
ubuntu 1
gentoo 1
nessus
nessus
SUSE SLED10 Security Update : subversion (SUSE-SU-2013:1217-1)
2015-05-20 00:00:00
Mandriva Linux Security Advisory : subversion (MDVSA-2013:173)
2013-06-14 00:00:00
Apache Subversion < 1.6.23 / 1.7.x < 1.7.10 Multiple Remote DoS
2013-07-17 00:00:00
securityvulns
securityvulns
Subversion security vulnerabilities
2013-06-17 00:00:00
mageia
mageia
Updated subversion packages fix security vulnerabilities
2013-06-19 14:13:33
osv
osv
subversion - several
2013-06-09 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-2703-1)
2013-06-08 00:00:00
Debian Security Advisory DSA 2703-1 (subversion - several vulnerabilities)
2013-06-09 00:00:00
Mageia: Security Advisory (MGASA-2013-0175)
2022-01-28 00:00:00
debian
debian
[SECURITY] [DSA 2703-1] subversion security update
2013-06-09 06:40:13
[SECURITY] [DSA 2703-1] subversion security update
2013-06-09 06:40:13
oraclelinux
oraclelinux
subversion security update
2014-03-05 00:00:00
centos
centos
mod_dav_svn, subversion security update
2014-03-06 11:19:14
redhat
redhat
(RHSA-2014:0255) Moderate: subversion security update
2014-03-05 00:00:00
fedora
fedora
[SECURITY] Fedora 18 Update: subversion-1.7.11-1.fc18.1
2013-08-15 02:33:32
ibm
ibm
Security Bulletin: Vulnerabilities in Subversion release shipped in Netcool/Impact (CVE-2013-1968)
2018-06-17 14:34:07
prion
prion
Memory corruption
2013-07-31 13:20:00
Code injection
2013-07-31 13:20:00
freebsd
freebsd
devel/subversion -- fsfs repositories can be corrupted by newline characters in filenames
2013-05-31 00:00:00
devel/subversion -- svnserve remotely triggerable DoS
2013-05-31 00:00:00
veracode
veracode
Authorization Bypass
2020-04-10 01:21:18
Denial Of Service (DoS)
2020-04-10 01:21:18
cve
cve
CVE-2013-1968
2013-07-31 13:20:00
CVE-2013-2112
2013-07-31 13:20:00
debiancve
debiancve
CVE-2013-1968
2013-07-31 13:20:00
CVE-2013-2112
2013-07-31 13:20:00
ubuntucve
ubuntucve
CVE-2013-1968
2013-06-09 00:00:00
CVE-2013-2112
2013-06-09 00:00:00
ubuntu
ubuntu
Subversion vulnerabilities
2013-06-27 00:00:00
gentoo
gentoo
Subversion: Multiple vulnerabilities
2013-09-23 00:00:00
JSON
Related for SECURITYVULNS:DOC:29471
nessus17securityvulns1mageia1osv1openvas15debian2oraclelinux1centos1redhat1fedora1ibm1prion2freebsd2veracode2cve2debiancve2ubuntucve2ubuntu1gentoo1